[Secure-testing-commits] r35102 - data/CVE

Mon Jun 22 18:22:12 UTC 2015

Author: carnil
Date: 2015-06-22 18:22:11 +0000 (Mon, 22 Jun 2015)
New Revision: 35102

Modified:
   data/CVE/list
Log:
cacti issues fixed in unstable

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2015-06-22 18:09:16 UTC (rev 35101)
+++ data/CVE/list	2015-06-22 18:22:11 UTC (rev 35102)
@@ -505,7 +505,7 @@
 	[squeeze] - chicken <no-dsa> (Minor issue)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/06/15/1
 CVE-2015-XXXX [VN: JVN#78187936 / TN:JPCERT#98968540]
-	- cacti <unfixed>
+	- cacti 0.8.8d+ds1-1
 	NOTE: http://svn.cacti.net/viewvc?view=rev&revision=7718
 	NOTE: Fixed upstream in 0.8.8d
 CVE-2015-4457
@@ -516,7 +516,7 @@
 	RESERVED
 	NOT-FOR-US: WordPress plugin aviary-image-editor-add-on-for-gravity-forms
 CVE-2015-4454 (SQL injection vulnerability in the get_hash_graph_template function in ...)
-	- cacti <unfixed>
+	- cacti 0.8.8d+ds1-1
 	NOTE: http://svn.cacti.net/viewvc?view=rev&revision=7720
 	NOTE: http://bugs.cacti.net/view.php?id=2572
 	NOTE: Fixed upstream in 0.8.8d
@@ -738,7 +738,7 @@
 CVE-2015-4343
 	RESERVED
 CVE-2015-4342 (SQL injection vulnerability in Cacti before 0.8.8d allows remote ...)
-	- cacti <unfixed>
+	- cacti 0.8.8d+ds1-1
 	NOTE: Original report: http://seclists.org/fulldisclosure/2015/Jun/19
 	NOTE: Upstream bug: http://bugs.cacti.net/view.php?id=2571 (not yet accessible)
 	NOTE: http://svn.cacti.net/viewvc?view=rev&revision=7719
@@ -5472,7 +5472,7 @@
 CVE-2015-2667 (Untrusted search path vulnerability in GNS3 before 1.2.3 allows local ...)
 	- gns3 <not-affected> (Windows specific)
 CVE-2015-2665 (Cross-site scripting (XSS) vulnerability in Cacti before 0.8.8d allows ...)
-	- cacti <unfixed>
+	- cacti 0.8.8d+ds1-1
 	NOTE: http://www.fortiguard.com/advisory/FG-VD-15-017/
 	NOTE: http://bugs.cacti.net/view.php?id=2542 (bug is not yet accessible)
 	NOTE: http://svn.cacti.net/viewvc/cacti/tags/0.8.8d/graphs.php?r1=7716&r2=7717&view=patch


